How are you improving API security testing?

Security & GRC Quality, Testing and Security

5.3k views2 Comments

Sort by:

CISOa year ago

Make sure assessment tools consume the Open API standard such that the tool can interact with the API and some level of coverage can be achieved. https://swagger.io/specification/

API testing is pretty much usless without knowledge of how the API works and how to communicate with it.

Consider API discovery across all Internet facing endpoints to help uncover unknown API's

Director of IT in IT Services2 years ago

We're constantly refining our API security testing by leveraging the latest tools and techniques to stay ahead of potential vulnerabilities. I am not mentioning tool names and techniques as the tools and techniques are dependent on API and use cases, the tool/technologies we are using may/may not be best for your organisation.

Content you might like

Intelligent Process Automation (IPA) is the use of technology, such as artificial intelligence and machine learning, to automate and optimize business processes. It aims to improve efficiency, reduce costs, and enhance decision-making. How far along is your company?

IPA has significantly improved our operations.4%

IPA has not brought much change to our operations.25%

IPA is very similar to traditional automation in our company.25%

IPA is quite different from traditional automation in our company.6%

Our company had a smooth implementation of IPA.10%

Our company faced some challenges during the implementation of IPA.11%

Our organization has integrated IPA with other technologies such as RPA and BPM.5%

Our organization has not yet integrated IPA with other technologies.6%

We have not yet encountered any significant challenges with IPA.1%

Our organization has automated some processes using IPA.1%

View Results

Is your org using SBOM for cyber security?

Yes61%

No22%

Not yet, but planning to13%

Considering it2%

View Results

How are you improving API security testing?

Sort by:

Content you might like

Intelligent Process Automation (IPA) is the use of technology, such as artificial intelligence and machine learning, to automate and optimize business processes. It aims to improve efficiency, reduce costs, and enhance decision-making. How far along is your company?

Is your org using SBOM for cyber security?

How do you deal with a mismatch of risk appetites with the board? What are some ways to increase, or temper, the board’s risk appetite if necessary?

What can organizations do to mitigate risks from Windows 10 devices that can’t be upgraded to Windows 11, like industrial control systems (ICS)?

How is AI implementation impacting your organization’s cyber insurance premium or coverage so far?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go